A blind SQL injection vulnerability was discovered today in the popularWordPress SEO plugin by Yoast. WPScanVulnerability Databaseissued an advisory after responsibly disclosing the vulnerability to the plugin's author:
The latest version at the time of writing (1.7.3.3) has been found to be affected by two authenticated (admin, editor or author user) Blind SQL Injection vulnerabilities.
No comments:
Post a Comment